完善产品购买页面，抽取公共组件，优化导航链接

2025-04-08 11:21:58 +08:00
parent a2c18a1be8
commit ba07c79b04
42 changed files with 1481 additions and 666 deletions
--- a/src/actions/auth/auth.ts
+++ b/src/actions/auth/auth.ts
@@ -0,0 +1,105 @@
+'use server'
+import {cookies} from 'next/headers'
+import {ApiResponse} from '@/lib/api'
+import {AuthContext} from '@/lib/auth'
+import {User} from '@/lib/models'
+import {callByDevice, callByUser, getUserToken} from '@/actions/base'
+
+export interface LoginParams {
+  username: string
+  password: string
+  remember?: boolean
+}
+
+type LoginResp = {
+  access_token: string
+  refresh_token: string
+  expires: number
+  auth: AuthContext
+  profile: User
+}
+
+export async function login(props: LoginParams): Promise<ApiResponse> {
+  // 尝试登录
+  const result = await callByDevice<LoginResp>('/api/auth/login/sms', {
+    username: props.username,
+    password: props.password,
+    remember: props.remember ?? false,
+  })
+  if (!result.success) {
+    return result
+  }
+  const data = result.data
+
+  // 保存到 cookies
+  const current = Math.floor(Date.now() / 1000)
+  const future = data.expires - current
+
+  const cookieStore = await cookies()
+  cookieStore.set('auth_token', data.access_token, {
+    httpOnly: true,
+    sameSite: 'strict',
+    secure: process.env.NODE_ENV === 'production',
+    maxAge: Math.max(future, 0),
+  })
+  cookieStore.set('auth_refresh', data.refresh_token, {
+    httpOnly: true,
+    sameSite: 'strict',
+    secure: process.env.NODE_ENV === 'production',
+    maxAge: 7 * 24 * 3600,
+  })
+  cookieStore.set('auth_info', JSON.stringify(data.auth), {
+    httpOnly: true,
+    sameSite: 'strict',
+    secure: process.env.NODE_ENV === 'production',
+    maxAge: 7 * 24 * 3600,
+  })
+  cookieStore.set('auth_profile', JSON.stringify(data.profile), {
+    httpOnly: true,
+    sameSite: 'strict',
+    secure: process.env.NODE_ENV === 'production',
+    maxAge: 7 * 24 * 3600,
+  })
+
+  return {
+    success: true,
+    data: undefined,
+  }
+}
+
+export async function getProfile(refresh: boolean = false) {
+  const cookie = await cookies()
+
+  // 获取缓存的用户信息
+  if (!refresh) {
+    const profile = cookie.get('auth_profile')?.value
+    if (profile) {
+      return JSON.parse(profile) as User
+    }
+  }
+
+  // 获取缓存的 token
+  let token: string
+  try {
+    token = await getUserToken()
+  }
+  catch (e) {
+    return null
+  }
+
+  // 如果没有缓存，则请求用户信息
+  const result = await callByUser<User>('/api/user/get/token', {token})
+  if (!result.success) {
+    return null
+  }
+
+  // 保存用户信息到cookie
+  cookie.set('auth_profile', JSON.stringify(result.data), {
+    httpOnly: true,
+    sameSite: 'strict',
+    secure: process.env.NODE_ENV === 'production',
+    maxAge: 7 * 24 * 3600,
+  })
+
+  return result.data
+}
--- a/src/actions/auth/login.ts
+++ b/src/actions/auth/login.ts
@@ -1,66 +0,0 @@
-'use server'
-import {cookies} from 'next/headers'
-import {ApiResponse, call} from '@/lib/api'
-import {AuthContext} from '@/lib/auth'
-
-export interface LoginParams {
-  username: string
-  password: string
-  remember?: boolean
-}
-
-type LoginResp = {
-  access_token: string
-  refresh_token: string
-  expires: number
-  auth: AuthContext
-}
-
-export async function login(props: LoginParams): Promise<ApiResponse> {
-  try {
-    // 尝试登录
-    const result = await call<LoginResp>('/api/auth/login/sms', {
-      username: props.username,
-      password: props.password,
-      remember: props.remember ?? false,
-    })
-    if (!result.success) {
-      return result
-    }
-    const data = result.data
-
-    // 计算过期时间
-    const current = Math.floor(Date.now() / 1000)
-    const future = data.expires - current
-
-    // 保存到 cookies
-    console.log("token!!!!", data)
-    const cookieStore = await cookies()
-    cookieStore.set('auth_token', data.access_token, {
-      httpOnly: true,
-      sameSite: 'strict',
-      secure: process.env.NODE_ENV === 'production',
-      maxAge: Math.max(future, 0),
-    })
-    cookieStore.set('auth_refresh', data.refresh_token, {
-      httpOnly: true,
-      sameSite: 'strict',
-      secure: process.env.NODE_ENV === 'production',
-      maxAge: 7 * 24 * 3600,
-    })
-    cookieStore.set('auth_info', JSON.stringify(data.auth), {
-      httpOnly: true,
-      sameSite: 'strict',
-      secure: process.env.NODE_ENV === 'production',
-      maxAge: Math.max(future, 0),
-    })
-
-    return {
-      success: true,
-      data: undefined,
-    }
-  }
-  catch (e) {
-    throw new Error('请求登陆失败', {cause: e})
-  }
-}
--- a/src/actions/auth/verify.ts
+++ b/src/actions/auth/verify.ts
@@ -2,7 +2,8 @@
 // 验证验证码函数
 import {cookies} from 'next/headers'
 import crypto from 'crypto'
-import {ApiResponse, call} from '@/lib/api'
+import {ApiResponse} from '@/lib/api'
+import { callByDevice } from '@/actions/base'


 export interface VerifyParams {
@@ -30,7 +31,7 @@ export default async function verify(props: VerifyParams): Promise<ApiResponse>
    }

    // 请求发送短信
-    return await call('/api/auth/verify/sms', {
+    return await callByDevice('/api/auth/verify/sms', {
      phone: props.phone,
      purpose: 0,
    })
--- a/src/actions/base.ts
+++ b/src/actions/base.ts
@@ -0,0 +1,289 @@
+'use server'
+import {API_BASE_URL, CLIENT_ID, CLIENT_SECRET, ApiResponse, UnauthorizedError} from '@/lib/api'
+import {cookies} from 'next/headers'
+import {redirect} from 'next/navigation'
+
+// OAuth令牌缓存
+interface TokenCache {
+  token: string
+  expires: number // 过期时间戳
+}
+
+// ======================
+// region device token
+// ======================
+
+let tokenCache: TokenCache | null = null
+
+// 获取OAuth2访问令牌
+async function getDeviceToken(forceRefresh = false): Promise<string> {
+  try {
+    // 检查缓存的令牌是否可用
+    if (!forceRefresh && tokenCache && tokenCache.expires > Date.now()) {
+      return tokenCache.token
+    }
+
+    const addr = `${API_BASE_URL}/api/auth/token`
+    const body = {
+      client_id: CLIENT_ID,
+      client_secret: CLIENT_SECRET,
+      grant_type: 'client_credentials',
+    }
+
+    const response = await fetch(addr, {
+      method: 'POST',
+      headers: {
+        'Content-Type': 'application/json',
+      },
+      body: JSON.stringify(body),
+    })
+
+    if (!response.ok) {
+      throw new Error(`OAuth token request failed: ${response.status} ${await response.text()}`)
+    }
+
+    const data = await response.json()
+
+    // 缓存令牌和过期时间
+    // 通常后端会返回expires_in（秒为单位）
+    tokenCache = {
+      token: data.access_token,
+      expires: Date.now() + data.expires_in * 1000,
+    }
+
+    return tokenCache.token
+  }
+  catch (error) {
+    console.error('Failed to get access token:', error)
+    throw new Error('认证服务暂时不可用')
+  }
+}
+
+// 通用的API调用函数
+async function callByDevice<R = undefined>(endpoint: string, data: unknown): Promise<ApiResponse<R>> {
+  try {
+    // 发送请求
+    let accessToken = getDeviceToken()
+    const requestOptions = {
+      method: 'POST',
+      headers: {
+        'Content-Type': 'application/json',
+        'Authorization': `Bearer ${await accessToken}`,
+      },
+      body: JSON.stringify(data),
+    }
+    let response = await fetch(`${API_BASE_URL}${endpoint}`, requestOptions)
+
+    // 如果返回401未授权，尝试刷新令牌并重试一次
+    if (response.status === 401) {
+      accessToken = getDeviceToken(true) // 强制刷新令牌
+
+      // 使用新令牌重试请求
+      requestOptions.headers['Authorization'] = `Bearer ${await accessToken}`
+      response = await fetch(`${API_BASE_URL}${endpoint}`, requestOptions)
+    }
+
+    // 检查响应状态
+    if (!response.ok) {
+      console.log('响应不成功', `status=${response.status}`, await response.text())
+      return {
+        success: false,
+        status: response.status,
+        message: '请求失败',
+      }
+    }
+
+    // 检查响应状态
+    return handleResponse(response)
+  }
+  catch (e) {
+    console.error('API call failed:', e)
+    throw new Error('服务调用失败', {cause: e})
+  }
+}
+
+
+// endregion
+
+// ======================
+// region user token
+// ======================
+
+async function getUserToken(refresh = false): Promise<string> {
+  // 从 cookie 中获取用户令牌
+  const cookie = await cookies()
+  const userToken = cookie.get('auth_token')?.value
+  const userRefresh = cookie.get('auth_refresh')?.value
+
+  // 检查缓存的令牌是否可用
+  if (!refresh && userToken) {
+    return userToken
+  }
+
+  // 如果没有刷新令牌，抛出异常
+  if (!userRefresh) {
+    throw UnauthorizedError
+  }
+
+  // 请求刷新访问令牌
+  const addr = `${API_BASE_URL}/api/auth/token`
+  const body = {
+    grant_type: 'refresh_token',
+    client_id: CLIENT_ID,
+    client_secret: CLIENT_SECRET,
+    refresh_token: userRefresh,
+  }
+
+  const response = await fetch(addr, {
+    method: 'POST',
+    headers: {
+      'Content-Type': 'application/json',
+    },
+    body: JSON.stringify(body),
+  })
+
+  if (!response.ok) {
+    console.log('刷新令牌失败', `status=${response.status}`, await response.text())
+    throw UnauthorizedError
+  }
+
+  // 保存新的用户令牌到 cookie
+  const data = await response.json()
+  const nextAccessToken = data.access_token
+  const nextRefreshToken = data.refresh_token
+  const expiresIn = data.expires_in
+
+  cookie.set('auth_token', nextAccessToken, {
+    httpOnly: true,
+    sameSite: 'strict',
+    secure: process.env.NODE_ENV === 'production',
+    maxAge: Math.max(expiresIn, 0),
+  })
+  cookie.set('auth_refresh', nextRefreshToken, {
+    httpOnly: true,
+    sameSite: 'strict',
+    secure: process.env.NODE_ENV === 'production',
+    maxAge: 7 * 24 * 3600, // 7天
+  })
+
+  return nextAccessToken
+}
+
+// 使用用户令牌的API调用函数
+async function callByUser<R = undefined>(
+  endpoint: string,
+  data: unknown,
+): Promise<ApiResponse<R>> {
+  try {
+    let token = await getUserToken()
+
+    // 发送请求
+    let response: Response
+    const requestOptions = {
+      method: 'POST',
+      headers: {
+        'Content-Type': 'application/json',
+        'Authorization': `Bearer ${token}`,
+      },
+      body: JSON.stringify(data),
+    }
+
+    response = await fetch(`${API_BASE_URL}${endpoint}`, requestOptions)
+
+    if (response.status === 401) {
+      token = await getUserToken(true)
+      requestOptions.headers['Authorization'] = `Bearer ${token}`
+      response = await fetch(`${API_BASE_URL}${endpoint}`, requestOptions)
+    }
+
+    // 检查响应状态
+    if (!response.ok) {
+      const body = await response.text()
+      console.log('响应不成功', `status=${response.status}`, body)
+
+      if (response.status === 401) {
+        return redirect('/login')
+      }
+
+      if (response.status >= 400 && response.status < 500) {
+        return {
+          status: response.status,
+          success: false,
+          message: body,
+        }
+      }
+
+      if (response.status >= 500) {
+        return {
+          status: response.status,
+          success: false,
+          message: '服务器错误',
+        }
+      }
+
+      return {
+        status: response.status,
+        success: false,
+        message: `请求失败，status = ${response.status}`,
+      }
+    }
+
+    return handleResponse(response)
+  }
+  catch (e) {
+    console.error('API call with user token failed:', e)
+    throw new Error('服务调用失败', {cause: e})
+  }
+}
+
+// endregion
+
+// 统一响应解析
+async function handleResponse<R = undefined>(response: Response): Promise<ApiResponse<R>> {
+
+  // 解析响应数据
+  const type = response.headers.get('Content-Type') ?? 'text/plain'
+  if (type.indexOf('application/json') !== -1) {
+    const json = await response.json()
+    if (!response.ok) {
+      console.log('响应不成功', `status=${response.status}`, json)
+      return {
+        success: false,
+        status: response.status,
+        message: json.message || '请求失败',
+      }
+    }
+    return {
+      success: true,
+      data: json,
+    }
+  }
+  else if (type.indexOf('text/plain') !== -1) {
+    const text = await response.text()
+    if (!response.ok) {
+      console.log('响应不成功', `status=${response.status}`, text)
+      return {
+        success: false,
+        status: response.status,
+        message: text || '请求失败',
+      }
+    }
+    return {
+      success: true,
+      data: undefined as unknown as R, // 强转类型，考虑优化
+    }
+  }
+  else {
+    throw new Error(`无法解析响应数据，未处理的 Content-Type: ${type}`)
+  }
+}
+
+// 预定义错误
+
+// 导出
+export {
+  getDeviceToken,
+  getUserToken,
+  callByDevice,
+  callByUser,
+}
--- a/src/actions/fake/tradeCallback.ts
+++ b/src/actions/fake/tradeCallback.ts
@@ -0,0 +1,3 @@
+export async function tradeCallbackByAlipay() {
+
+}
--- a/src/actions/resource.ts
+++ b/src/actions/resource.ts
@@ -0,0 +1,27 @@
+'use server'
+
+import {callByUser} from '@/actions/base'
+
+async function createResourceByBalance(props: {
+  type: number
+  live: number
+  quota: number
+  expire: number
+  daily_limit: number
+}) {
+  return await callByUser('/api/resource/create/balance', props)
+}
+
+async function createResourceByAlipay() {
+  throw new Error('Not implemented')
+}
+
+async function createResourceByWechat() {
+  throw new Error('Not implemented')
+}
+
+export {
+  createResourceByBalance,
+  createResourceByAlipay,
+  createResourceByWechat,
+}
--- a/src/actions/trade.ts
+++ b/src/actions/trade.ts
@@ -0,0 +1,27 @@
+'use server'
+
+import { callByUser } from "@/actions/base"
+
+export async function tradeRecharge(props: {
+  amount: number
+  method: string
+}) {
+
+  let method: number
+  switch (props.method) {
+    case 'alipay':
+      method = 1
+      break
+    case 'wechat':
+      method = 2
+      break
+    default:
+      throw new Error(`${props.method} is not a valid method`)
+  }
+
+  return await callByUser('/api/trade/create', {
+    subject: '余额充值',
+    amount: Number(props.amount * 100),
+    method: method,
+  })
+}
--- a/src/actions/whitelist.ts
+++ b/src/actions/whitelist.ts
@@ -1,5 +1,6 @@
 'use server'
-import {callWithUserToken, PageRecord} from '@/lib/api'
+import { PageRecord} from '@/lib/api'
+import { callByUser } from '@/actions/base'

 type Whitelist = {
  id: number
@@ -13,7 +14,7 @@ async function listWhitelist(props: {
  page: number
  size: number
 }) {
-  return await callWithUserToken<PageRecord<Whitelist>>('/api/whitelist/list', props)
+  return await callByUser<PageRecord<Whitelist>>('/api/whitelist/list', props)
 }

 async function createWhitelist(props: {
@@ -21,7 +22,7 @@ async function createWhitelist(props: {
  remark?: string
 }) {
  console.log(props)
-  return await callWithUserToken('/api/whitelist/create', props)
+  return await callByUser('/api/whitelist/create', props)
 }

 async function updateWhitelist(props: {
@@ -30,13 +31,13 @@ async function updateWhitelist(props: {
  remark?: string
 }) {
  console.log(props)
-  return await callWithUserToken('/api/whitelist/update', props)
+  return await callByUser('/api/whitelist/update', props)
 }

 async function removeWhitelist(props: {
  id: number
 }[]) {
-  return await callWithUserToken('/api/whitelist/remove', props)
+  return await callByUser('/api/whitelist/remove', props)
 }

 export {